sqlite3: Heap-buffer-overflow in instrFunc

2017-01-04T23:06:57
ID OSSFUZZ-384
Type ossfuzz
Reporter Google
Modified 2017-03-04T11:45:29

Description

Detailed report: https://clusterfuzz-external.appspot.com/testcase?key=5694101458518016

Project: sqlite3 Fuzzer: libFuzzer_sqlite3_ossfuzz Fuzz target binary: ossfuzz Job Type: libfuzzer_asan_sqlite3 Platform Id: linux

Crash Type: Heap-buffer-overflow READ 1 Crash Address: 0x63400001dcc0 Crash State: instrFunc sqlite3VdbeExec sqlite3Step

Sanitizer: address (ASAN)

Recommended Security Severity: Medium

Regressed: https://clusterfuzz-external.appspot.com/revisions?job=libfuzzer_asan_sqlite3&range=201701021259:201701021723

Minimized Testcase (0.11 Kb): https://clusterfuzz-external.appspot.com/download/AMIfv96vHsRB7wBri0V-v6D0VkmLExRJeCPOhmQxNkFWudRC35uDp9vzimiBjYt40hRshufiuf8_1AS1F8p6VWV7SyBwlLt_70rdMzKST9r6aGmvdEJ-6-AkB9MU4pS820DdkBO5BDF6H85119ETXZMlbjfSuyoBQBIspkqXkNSS0HI7U60MV9h_j90CFN9q3AynT1_L75w5skCFhqaO_P_LEDYvEgXGCn3lFSqkC7uJG3mSmXmMcKhKeSv7jEcXbc9-e_Ftv5GIpSalODHQk11Hw9LaBkzfX9WdMWGaf4hb3H7F3G6e9rMcrQlyyC2XmNnARO8PZX7vfcOFxQUH6DDtWgKOcBNRROyq0OwOhDZItg4SouVt62ho95pN9H0V6DJycxHLk8lv?testcase_id=5694101458518016

Issue manually filed by: aarya

See https://github.com/google/oss-fuzz/blob/master/docs/reproducing.md for more information.

This bug is subject to a 90 day disclosure deadline. If 90 days elapse without an upstream patch, then the bug report will automatically become visible to the public.